Introduction to ZigBee3.0 Wireless Packet Capture
ZigBee3.0 is a standard protocol launched by the ZigBee Alliance that can be interconnected. The previous Packet Sniffer packet capture tool cannot parse the data packets of ZigBee3.0. Because of the security mechanism of ZigBee3.0, all data packets are encrypted and cannot be Parse the meaning of each data, so this packet capture method is not very helpful in the ZigBee 3.0 development process. If the third-party packet capture software Ubiqua is used, ZigBee 3.0 data packets can be parsed. The specific application of Ubiqua will be introduced in detail below.
1. Ubiqua installation instructions
Step 1: Unzip the Ubiqua installation package
Step 2: Select the official installation file "UbiquaToolbox_1.4.2244.msi" for installation. During the installation process, select the installation disk and directly "Next" until the installation is successful.
Step 3: Copy the "Ubiqua.exe" file to the original file in the installation directory, and the installation is complete.
Note: This article is mainly for teaching and demonstration purposes. The genuine installation package needs to be downloaded from the Ubiqua official website.
2. Ubiqua's packet capture instructions
industrial iot gateway
modbus tcp gateway
modbus ethernet
rs485 ethernet adapter
Step 1: Plug the product E18-2G4U04B into the USB port of the computer.
Step 2: Open the Ubiqua software, in the device management column, you can see that the software has automatically identified the device information of the E18-2G4U04B (TI CC2531).
Step 3: Turn on the button switch on the device, select the channel with the right mouse button, for example, select channel 20, you can capture the wireless data packets on channel 20.
Step 4: Now, because the network key is not known, the captured data packets are encrypted and not unlocked.
Step 5: Need to add a key, ZigBee3.0 has multi-layer key management, only need to add Trust Center Link Key here, add the default key of ZigBee Alliance here. Select "Tools", then select "Security", then select "Add", select "Application or Trust Center Link Key" for the key type, enter the default key of the ZigBee Alliance, and finally add it, and click "OK".
Step 6: The trust center connection key was added before, but the network key is not known and the data packet cannot be parsed. At this time, you only need to rejoin the network once, so that the trust center (coordinator) will publish the network key. Out, Ubiqua will automatically save the network key issued by the trust center. As shown in the figure below, the data packets are all parsed after re-entering the network, for example, the sent 12 34 56 78 90 can be parsed. Open "Security" again and you can see that Ubiqua has automatically saved the network key.
3. Common tools in Ubiqua packet grabber
`Save the current data
aScroll display
bSingle package decomposition window displays the latest package
cClear all
d Current filter
e Enable and disable filters
fCreate a new filter
g Edit current filter
h Delete filter
4. ZigBee3.0 packet analysis
` The timestamp of the data packet, showing the time of the data packet and the time difference between the two data packets.
aZigBee channel, 16 channels.
bZigBee3.0 protocol layer, mainly including Nwk, ZDP, APS, MAC, ZCL, Custom (custom) and so on.
c Packet information, analyze the specific function of the packet.
d The source network short address of the data packet
e The destination address of the data packet
Expand Packet View to see all the parsed data in the data, the main MAC address, network short address, PANID, endpoint number, Cluster ID, Profile ID and other parameters, APS Payload is the interactive data sent by the application layer, here is custom sent 12 34 56 78 90.
Post je objavljen 29.08.2022. u 05:26 sati.